$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/681de169-d8d1-40da-9051-1bb122bbdbaa.roa File: 681de169-d8d1-40da-9051-1bb122bbdbaa.roa (raw, json) Hash identifier: B462yFAioMRcdRqQbUgD/yXjH3c1UL2GZJmihDDoGoI= Subject key identifier: 4D:C0:B8:24:D2:95:45:B9:D0:9F:F3:F2:F4:82:75:5B:8F:48:27:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54C49141D05B5FA3AA7D2AEDF1A7801149AADC4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/681de169-d8d1-40da-9051-1bb122bbdbaa.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 32.160.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c4:91:41:d0:5b:5f:a3:aa:7d:2a:ed:f1:a7:80:11:49:aa:dc:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=ee5c14abe109c4974e5b5994bdc935dea28dbbc06b65050ace1fe457163f6504, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2f:22:5a:3a:f4:ff:f3:6b:c3:2a:5b:b6:48: c7:ac:1a:a8:c4:4e:16:ca:57:c9:2a:c7:a2:35:76: ab:6b:32:75:a7:03:55:4c:58:06:9c:2e:47:7e:ce: 13:7b:d8:07:2e:37:62:2b:81:4b:3c:5a:82:32:7b: 22:64:85:1b:90:27:4c:77:a7:ec:33:00:9c:91:1a: e1:df:42:20:64:34:39:a3:d9:71:f3:5a:17:64:c2: 50:d1:20:52:21:94:23:4a:3a:47:af:88:30:68:b4: a9:e0:36:9d:e3:c1:7e:1a:31:71:21:2d:42:53:1c: b1:6d:b3:9d:5d:39:8a:dc:16:e2:9e:ad:35:43:5c: 1e:88:41:fe:ad:4f:e7:c0:19:e7:c5:96:7a:d3:eb: dd:73:ac:c0:82:27:4c:3a:87:9b:42:c2:c8:c2:d0: 1f:cc:55:c1:43:96:53:73:b2:e6:50:9d:a7:5e:44: 18:86:e4:d4:56:08:12:9d:82:30:4d:ab:84:26:37: 54:3e:82:6e:29:14:6e:bd:87:b6:ee:6c:23:1e:bd: 4c:2e:eb:26:26:6a:05:86:7d:13:07:66:f8:0f:c4: d1:57:88:02:c3:27:1d:85:bb:61:46:3d:6d:fa:45: eb:ea:95:08:a8:af:07:e1:29:c2:ef:95:68:86:9c: 3e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C0:B8:24:D2:95:45:B9:D0:9F:F3:F2:F4:82:75:5B:8F:48:27:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/681de169-d8d1-40da-9051-1bb122bbdbaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.160.0.0/14 Signature Algorithm: sha256WithRSAEncryption 0a:7d:df:c2:c0:37:fd:48:93:14:95:bb:59:35:7d:52:43:25: de:16:8c:5e:17:7d:75:ae:5b:2d:ec:98:31:7c:d5:40:c9:96: df:77:7f:84:60:4b:10:c8:19:36:38:fb:ad:e6:79:39:16:28: 64:d1:ce:76:77:1a:4b:a9:c9:7b:11:64:19:da:ce:57:c1:f7: a1:10:1b:de:23:22:16:63:9b:ab:b8:f7:0f:ed:40:e8:ff:43: 83:f6:c3:25:43:0f:eb:03:cc:76:c1:49:9a:99:ac:f1:92:04: bf:29:14:92:83:c6:6b:86:4c:29:6b:44:5a:29:bb:7c:c2:89: 68:e7:78:cf:fb:8d:e2:9f:e3:5c:56:f2:eb:2d:58:14:f5:cb: 13:6b:67:6e:46:bd:18:11:fd:ef:32:e1:23:a3:0a:24:af:f7: 5c:21:9e:64:6d:cc:1b:17:44:67:fb:e6:98:3c:1a:0b:89:79: 6b:02:32:5b:bf:78:86:a7:63:88:c2:06:bc:6d:90:e3:69:fd: f7:05:74:6c:e5:91:a5:dc:d9:e7:02:13:e8:73:0e:63:b0:4e: b7:34:c4:4e:ed:3b:b5:8a:10:2c:6d:c6:62:fd:f1:a9:1b:64: 74:0b:6c:3a:15:dd:a9:9c:7f:35:2f:3c:fd:f7:8c:53:b1:43: 9f:dc:2a:3c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVMSRQdBbX6OqfSrt8aeAEUmq3EowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTVjMTRhYmUxMDljNDk3NGU1YjU5OTRiZGM5MzVkZWEy OGRiYmMwNmI2NTA1MGFjZTFmZTQ1NzE2M2Y2NTA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChLyJaOvT/82vDKlu2SMesGqjEThbKV8kqx6I1dqtrMnWn A1VMWAacLkd+zhN72AcuN2IrgUs8WoIyeyJkhRuQJ0x3p+wzAJyRGuHfQiBkNDmj 2XHzWhdkwlDRIFIhlCNKOkeviDBotKngNp3jwX4aMXEhLUJTHLFts51dOYrcFuKe rTVDXB6IQf6tT+fAGefFlnrT691zrMCCJ0w6h5tCwsjC0B/MVcFDllNzsuZQnade RBiG5NRWCBKdgjBNq4QmN1Q+gm4pFG69h7bubCMevUwu6yYmagWGfRMHZvgPxNFX iALDJx2Fu2FGPW36RevqlQiorwfhKcLvlWiGnD5zAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTcC4JNKVRbnQn/Py9IJ1W49IJ/cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4MWRlMTY5LWQ4ZDEtNDBkYS05MDUxLTFiYjEyMmJiZGJhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgoDANBgkqhkiG9w0BAQsFAAOCAQEACn3fwsA3/UiTFJW7WTV9UkMl3haM Xhd9da5bLeyYMXzVQMmW33d/hGBLEMgZNjj7reZ5ORYoZNHOdncaS6nJexFkGdrO V8H3oRAb3iMiFmObq7j3D+1A6P9Dg/bDJUMP6wPMdsFJmpms8ZIEvykUkoPGa4ZM KWtEWim7fMKJaOd4z/uN4p/jXFby6y1YFPXLE2tnbka9GBH97zLhI6MKJK/3XCGe ZG3MGxdEZ/vmmDwaC4l5awIyW794hqdjiMIGvG2Q42n99wV0bOWRpdzZ5wIT6HMO Y7BOtzTETu07tYoQLG3GYv3xqRtkdAtsOhXdqZx/NS88/feMU7FDn9wqPA== -----END CERTIFICATE-----Generated at Thu May 9 01:26:15 2024 by rpki-client on console-ams.rpki-client.org